The author says he wants to expose the true state of security in these Web sites, the most popular ones on the Internet. He seems focused on cross-site scripting bugs.

The "Month of [fill in whatever] Bugs" phenomenon has a very spotty record, with some, such as the Month of Kernel Bugs and Month of PHP Bugs, yielding some severe ones along with the uninteresting. Many, including the recent Month of ActiveX Bugs, have been complete busts.